IP access restriction

Rick Lim ricklim at telus.net
Wed Oct 13 05:36:42 UTC 2004


I take it your using NAT, in this instance it needs to be a bridge type of
function.

-----Original Message-----
From: fedora-list-bounces at redhat.com [mailto:fedora-list-bounces at redhat.com]
On Behalf Of Mike Burger
Sent: Tuesday, October 12, 2004 9:15 PM
To: For users of Fedora Core releases
Subject: RE: IP access restriction

My apologies.

Yes...a box running iptables could be used as a border/front end firewall.

I'm using such a setup, now, on my DSL connection, to restrict access to 
the various machines on my home network.

On Tue, 12 Oct 2004, Rick Lim wrote:

> The boxes vary from unix servers to voip gateways etc, so IPTABLES is not
an
> option on each machine, what is required is a machine to funnel all acess
> into and out of the subnet these machines are on.
> 
> -----Original Message-----
> From: fedora-list-bounces at redhat.com
[mailto:fedora-list-bounces at redhat.com]
> On Behalf Of Mike Burger
> Sent: Tuesday, October 12, 2004 4:58 PM
> To: For users of Fedora Core releases
> Subject: Re: IP access restriction
> 
> On Tue, 12 Oct 2004, Rick Lim wrote:
> 
> > I have a friend that has a few boxes directly on the internet, which he
> > thinks are being access by unwanted "visitors".
> > 
> > These machine still have to have routable IP address but should have
> limited
> > access from external IP subnets.
> > 
> >  
> > 
> > What would be suitable for limiting IP subnet access to these address?
> > 
> > Would a 'firewall' like machine with IPTABLES be able to accomplish
this,
> > that is without changing the IP address passed through the 'firewallish'
> > machine?
> 
> iptables, on the system in question, should be sufficient.
> 

-- 
Mike Burger
http://www.bubbanfriends.org

Visit the Dog Pound II BBS
telnet://dogpound2.citadel.org or http://dogpound2.citadel.org

To be notified of updates to the web site, visit 
http://www.bubbanfriends.org/mailman/listinfo/site-update, or send a 
message to:

site-update-request at bubbanfriends.org

with a message of: 

subscribe

-- 
fedora-list mailing list
fedora-list at redhat.com
To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list





More information about the fedora-list mailing list